CVE-2020-0113
MEDIUMAndroid 9-10 - Out-of-Bounds Read in Camera3OutputUtils.cpp
Title source: llmExploitation Summary
EIP tracks 1 public exploit for CVE-2020-0113. PoCs published by XDo0.
AI-analyzed exploit summary This repository contains a proof-of-concept exploit for CVE-2020-0113 and CVE-2020-0108, which are Android framework vulnerabilities allowing malicious services to run in the foreground without displaying a notification. The PoC demonstrates privilege escalation by exploiting flaws in NotificationManagerService and ServiceRecord.
Description
In sendCaptureResult of Camera3OutputUtils.cpp, there is a possible out of bounds read due to a use after free. This could lead to local information disclosure with no additional execution privileges needed. User interaction is not needed for exploitation.Product: AndroidVersions: Android-10 Android-9Android ID: A-150944913
Exploits (1)
This repository contains a proof-of-concept exploit for CVE-2020-0113 and CVE-2020-0108, which are Android framework vulnerabilities allowing malicious services to run in the foreground without displaying a notification. The PoC demonstrates privilege escalation by exploiting flaws in NotificationManagerService and ServiceRecord.
References (1)
Scores
CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N